Dangerous Greeting Cards You Probably Shouldn’t Send Anyone

Regular paper greeting cards are pricey for what they are, and of course the annoying musical variety are even more so. If you really want to go all out, however, you’ve got to go custom made. That’s what [Xyla] and [Ian] did, though we’d stop short of recommending you build or send these to anyone!

Two variants of the “dangerous cards” were built. One repurposed an electric shocking circuit from a handheld buzzer, tucking it inside a shiny Disney greeting card. Using a switch from a musical greeting card, when opened, the shocking circuit is activated. With the circuit connected to aluminium tape electrodes hidden in the shiny foil design, when the user opens the card, they receive a painful shock. The flamethrowing variant was triggered by the same mechanism, though instead sent power to an electric match, shooting a fireball with flash cotton when the card was opened.

These cards make excellent pranks, though we’d be wary about sending them by mail for obvious reasons. We’ve seen [Xyla’s] work before too, with her glowing kayak a particular highlight. Video after the break.

Continue reading “Dangerous Greeting Cards You Probably Shouldn’t Send Anyone”

[Fran] Is Helping Santa Slay This Year

We know at least one person who ought to make Santa’s ‘nice’ list this year. [Fran] was probably near the top of it already, but sending Santa a handmade greeting card with a fully-functioning guitar amp inside will probably make him rewrite her name in glitter, or silver Sharpie.

This stocking stuffer-sized amp is based around the LM386 and the bare minimum components necessary to make it rock. Everything is dead-bug soldered and sandwiched between two pieces of card stock. The first version with a single 386 sounded okay, but [Fran] wanted it louder, so she added another stage with a second 386. [Fran] glued the rim of the speaker directly to the card so it can act like a cone and give a better sound than the speaker does by itself.

All Santa needs to rock out is his axe and a small interface made of a 1/4″ jack and a 9 V wired to a 3-pin header that plugs into the card. He can take a break from Christmas music and let some of those cookies digest while he jams. Be sure to check out the build video after the break if you want to stay off the ‘naughty’ list.

Want to make your own musical greeting card? If you can program an ATtiny85, you won’t need much more than that to send a smile. If visual art is more your thing, 3D print them a 2D picture.

Continue reading “[Fran] Is Helping Santa Slay This Year”

Lo-Fi Greeting Card Sampler

We’re all familiar with record-your-own-message greeting cards. Generally they’re little more than a cute gimmick for a friend’s birthday, but [dögenigt] saw that these cards had more potential.

After sourcing a couple of cheap modules from eBay, the first order of business was to replace the watch batteries with a DC power supply. Following the art of circuit bending, he then set about probing contacts on the board. Looking to control the pitch of the recorded message, [dögenigt] found two pads that when touched, changed the speed of playback. Wiring these two points to the ears of a potentiometer allowed the pitch to be varied continously. Not yet satisfied, [dögenigt] wanted to enable looped playback, and found a pin that went low when the message was finished playing. Wiring this back to the play button allowed the recording to loop continuously.

[dögenigt] now has a neat little sampler on his hands for less than $10 in parts. To top it off, he housed it all in a sweet 70s intercom enclosure, using the Call button to activate recording, and even made it light sensitive with an LDR.

We’ve seen a few interesting circuit bends over the years – check out this digitally bent Roland TR-626 or this classic hacked Furby.

Check out the video under the break.

Continue reading “Lo-Fi Greeting Card Sampler”

3D Printed Greeting Cards

T’is the season to hack, and the maker brigade won’t disappoint — there’s no better way to crank out a few cute holiday tchotchkes than to fire up the 3D printer. [Niklas Roy] has released gDraw, a software package that creates G-code to print out 2D drawings on your 3D printer.

The interface is simple, allowing the quick and easy creation of basic vector drawings. The program then converts the paths in the drawing to a G-code representation that your printer follows to squirt them out in plastic. Think of it as the 3D printed equivalent of the “Stroke Path” tool in Photoshop.

[Niklas] chose to demonstrate the software by creating some interesting greeting cards that Big Christmas is sure to rip off next year and sell for $30 a pop. The printed plastic drawings give a fun 3D effect to the cards, and we’d love to see more examples of art created with this technique. The software was designed to work with the Ultimaker 2, but with tweaks, it should be able to generate code for other printers, too.

We’ve seen plenty of great festive hacks over the years — like this awesome laser projection setup.

Moonpig

When Responsible Disclosure Isn’t Enough

Moonpig is a well-known greeting card company in the UK. You can use their services to send personalized greeting cards to your friends and family. [Paul] decided to do some digging around and discovered a few security vulnerabilities between the Moonpig Android app and their API.

First of all, [Paul] noticed that the system was using basic authentication. This is not ideal, but the company was at least using SSL encryption to protect the customer credentials. After decoding the authentication header, [Paul] noticed something strange. The username and password being sent with each request were not his own credentials. His customer ID was there, but the actual credentials were wrong.

[Paul] created a new account and found that the credentials were the same. By modifying the customer ID in the HTTP request of his second account, he was able to trick the website into spitting out all of the saved address information of his first account. This meant that there was essentially no authentication at all. Any user could impersonate another user. Pulling address information may not sound like a big deal, but [Paul] claims that every API request was like this. This meant that you could go as far as placing orders under other customer accounts without their consent.

[Paul] used Moonpig’s API help files to locate more interesting methods. One that stood out to him was the GetCreditCardDetails method. [Paul] gave it a shot, and sure enough the system dumped out credit card details including the last four digits of the card, expiration date, and the name associated with the card. It may not be full card numbers but this is still obviously a pretty big problem that would be fixed immediately… right?

[Paul] disclosed the vulnerability responsibly to Moonpig in August 2013. Moonpig responded by saying the problem was due to legacy code and it would be fixed promptly. A year later, [Paul] followed up with Moonpig. He was told it should be resolved before Christmas. On January 5, 2015, the vulnerability was still not resolved. [Paul] decided that enough was enough, and he might as well just publish his findings online to help press the issue. It seems to have worked. Moonpig has since disabled its API and released a statement via Twitter claiming that, “all password and payment information is and has always been safe”. That’s great and all, but it would mean a bit more if the passwords actually mattered.

CartoLucci: A Candle-Powered Christmas Card

cartoLucci

If you’re looking for a last-minute Christmas present, you probably won’t have enough time to reproduce [Helmar’s] candle-powered Christmas card. He’s been working on it for a few years now, since his first prototype in 2010. Though he pieced together the original card with parts lying around his workshop, the most recent iteration looks like it belongs on the shelf in a store.

We last saw [Helmar’s] work two years ago, when he shared his Full Color Laser TV. This project is a bit more compact: the circuitry was printed with conductive ink on the cardstock, and all the required components are held together by conductive adhesive. To power the electronics, he decided against a battery and instead chose to embed a solar cell on the inside of the card. Placing a lit candle inside the open card provides enough juice for the exterior of the card to shine.

You can see a video of both the current and prototype versions of [Helmar’s] cards after the break.

Continue reading “CartoLucci: A Candle-Powered Christmas Card”

Edge-lit Musical Birthday Card

[Monirul Pathan] decided to make the card as unique as this gift when getting ready for a birthday. He designed and built his own musical card with LED edge-lit acrylic to display the message.

The electronic design seeks to keep things as flat as possible. The card-shaped acrylic panel has a void to fit the PCB exactly, and the components are relatively flat. One thing we found quite interesting is that the ATtiny85 which drives the device is surface mounted, but it is not a surface mount component. The layout includes though-hole pads, but instead of drilling holes [Monirul] clipped off the excess of the DIP legs and soldered the remainder directly to the copper. We suppose this isn’t going to get a lot of use so it just needs to hold together for one day.

As you can see in the video after the break, the speaker plays ‘Happy Birthday’ followed by ‘Under the Sea’. At the same time, four blue LEDs pulse to the music, lighting up the words that are engraved in the plastic.

Continue reading “Edge-lit Musical Birthday Card”